A CKKS implementation in SageMath which supports basic bootstrapping.
This repository provides a SageMath implementation of the CKKS homomorphic encryption scheme [2], designed for efficient approximate computations on encrypted data. CKKS is particularly suited for applications involving complex numbers and approximate arithmetic.
The CKKS scheme enables approximate arithmetic operations on encrypted data, which is useful for privacy preserving computations for which exact results are unnecessary or impossible to achieve. The scheme was originally introduced by Cheon et al. in 2016 [2], with subsequent work on bootstrapping by Cheon et al. in 2018 [3] and running time improvements for bootstrapping by Cheon et al. in 2018 [4]. This SageMath implementation is based on these papers.
-
Prerequisites: Ensure you have SageMath 10.0 or higher installed. You can download it from the SageMath website.
-
Clone the repository:
git clone https://github.com/se-tim/CKKS-in-SageMath.git cd CKKS-in-SageMath
-
ckks.py
: Contains the CKKS class, implementing key aspects of the CKKS scheme, including homomorphic arithmetic [2] and bootstrapping [3]. -
poly.py
: Manages polynomial operations required for CKKS, like polynomial multiplication and modular reduction. -
fast_dft.py
: Contains an implementation of a version of the Discrete Fourier Transform [4], which is essential for encoding and decoding complex vectors in the CKKS scheme; it is also required for the CoeffToSlot and SlotToCoeff transformations, both of which are necessary for bootstrapping in CKKS. -
test.ipynb
: A Jupyter notebook demonstrating CKKS functionality with examples. -
Cache
: This directory contains cached files generated during runtime. -
Estimator
: For security estimation in the context of RLWE and LWE [1].
The test.ipynb
notebook demonstrates the key components of the CKKS scheme, including:
- Configuration: Set CKKS parameters.
- Key Generation: Generate keys for encryption and decryption.
- Encoding and Encryption: Encode complex vectors into polynomials and encrypt them.
- Decryption and Decoding: Verify encryption by decrypting and decoding ciphertexts.
- Homomorphic Operations: Perform addition and multiplication on ciphertexts, and verify results.
- Bootstrapping: Refresh ciphertexts to raise levels, and verify the result.
Run the notebook cells sequentially to see these operations in action.
This project is open source and available under the MIT License.
See LICENSE
for more details.
-
Martin R. Albrecht, Rachel Player, & Sam Scott. On the Concrete Hardness of Learning with Errors. Journal of Mathematical Cryptology, Volume 9, Issue 3, Pages 169–203, 2015. doi:10.1515/jmc-2015-0016
-
Jung Hee Cheon, Andrey Kim, Miran Kim, & Yongsoo Song. Homomorphic Encryption for Arithmetic of Approximate Numbers. Cryptology ePrint Archive, Paper 2016/421, 2016. https://eprint.iacr.org/2016/421
-
Jung Hee Cheon, Kyoohyung Han, Andrey Kim, Miran Kim, & Yongsoo Song. Bootstrapping for Approximate Homomorphic Encryption. Cryptology ePrint Archive, Paper 2018/153, 2018. https://eprint.iacr.org/2018/153
-
Jung Hee Cheon, Kyoohyung Han, & Minki Hhan. Faster Homomorphic Discrete Fourier Transforms and Improved FHE Bootstrapping. Cryptology ePrint Archive, Paper 2018/1073, 2018. https://eprint.iacr.org/2018/1073